rxrpc: Call state should be read with READ_ONCE() under some circumstances The call state may be changed at any time by the data-ready routine in response to received packets, so if the call state is to be read and acted upon several times in a function, READ_ONCE() must be used unless the call state lock is held. Signed-off-by: David Howells <dhowells@redhat.com> Signed-off-by: David S. Miller <davem@davemloft.net>

commit: 146d8fef9da1ba854de7fa28b9cb9eb147535f88 [log] [tgz]
author: David Howells <dhowells@redhat.com> Sat Mar 04 00:01:41 2017 +0000
committer: David S. Miller <davem@davemloft.net> Tue Mar 07 13:59:06 2017 -0800
tree: 76b9bea4ac0c4bcd1a2c50418a304007b54ad6bd
parent: 02b2faaf0af1d85585f6d6980e286d53612acfc2 [diff] [blame]
diff --git a/net/rxrpc/recvmsg.c b/net/rxrpc/recvmsg.c
index 6491ca4..3e2f1a8 100644
--- a/net/rxrpc/recvmsg.c
+++ b/net/rxrpc/recvmsg.c

@@ -527,7 +527,7 @@ int rxrpc_recvmsg(struct socket *sock, struct msghdr *msg, size_t len,
 		msg->msg_namelen = len;
 	}
 
-	switch (call->state) {
+	switch (READ_ONCE(call->state)) {
 	case RXRPC_CALL_SERVER_ACCEPTING:
 		ret = rxrpc_recvmsg_new_call(rx, call, msg, flags);
 		break;
@@ -640,7 +640,7 @@ int rxrpc_kernel_recv_data(struct socket *sock, struct rxrpc_call *call,
 
 	mutex_lock(&call->user_mutex);
 
-	switch (call->state) {
+	switch (READ_ONCE(call->state)) {
 	case RXRPC_CALL_CLIENT_RECV_REPLY:
 	case RXRPC_CALL_SERVER_RECV_REQUEST:
 	case RXRPC_CALL_SERVER_ACK_REQUEST:
commit	146d8fef9da1ba854de7fa28b9cb9eb147535f88	[log] [tgz]
author	David Howells <dhowells@redhat.com>	Sat Mar 04 00:01:41 2017 +0000
committer	David S. Miller <davem@davemloft.net>	Tue Mar 07 13:59:06 2017 -0800
tree	76b9bea4ac0c4bcd1a2c50418a304007b54ad6bd
parent	02b2faaf0af1d85585f6d6980e286d53612acfc2 [diff] [blame]